Cyber Incident Victim: Cobb County
Date:
Jun 2021
Location:
United States of America
Summary
A sophisticated phishing attack targeted Cobb County's email systems, resulting in spam dissemination from the county domain and significant email server disruptions lasting several days. Although no data compromise occurred, the incident necessitated round-the-clock staff monitoring and prompted proposals to bolster cybersecurity staffing with four new positions funded by non-recurring budget allocations. County officials emphasized heightened vulnerability risks, with commissioners acknowledging the urgency despite concerns over using temporary funds for recurring expenses, citing potential far greater costs of future breaches. The staffing expansion faced challenges due to competitive hiring markets and fiscal constraints, aligning with broader discussions about competitive employee compensation to address retention issues.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In late June 2021, Cobb County, Georgia, experienced a sophisticated phishing attack targeting its email systems. Hackers compromised county email addresses, resulting in spam emails being distributed from the official cobbcounty.org domain and causing multi-day disruptions to email servers. County spokesperson Ross Cavitt confirmed no data compromise occurred, and Cobb Police did not open an investigation into the incident. This attack followed a separate February 2021 incident where attackers breached the Cobb County School District's systems to send false emergency alerts. County staff responded with intensive mitigation efforts, working 24-hour shifts for several days to monitor and restore email services. The attack occurred shortly before June 23, when Information Services Director Kimberly Lemley presented staffing proposals to the Board of Commissioners.
The incident prompted Lemley to request approval for four new cybersecurity positions at a cost of $46,389.25, funded through the county's remaining budget allocations from previous fiscal periods. Commissioners expressed concerns about using non-recurring funds for recurring personnel expenses, with Commissioner Keli Gambrill noting historical county opposition to such financial practices. However, officials unanimously acknowledged the critical need for enhanced cybersecurity, with Chairwoman Lisa Cupid warning that vulnerability risks outweighed the proposed expenditure. County Manager Jackie McMorris emphasized the potential financial consequences of future breaches, stating ransom demands could far exceed the staffing costs. The funding would only cover positions through September 2021, with Lemley noting recruitment challenges due to high market demand for cybersecurity professionals. This staffing discussion transitioned into broader compensation concerns, as a recent sample study revealed Cobb County paid employees 8.41% less than neighboring counties, contributing to elevated turnover rates of 9-13% across different pension plans.